John, your summary distils a lot of hard work but is deeply troubling,
because it is constructed entirely on a "make the victims pay"
foundation. As long as that is your stance, then sure it is so that
"Spam . . . will remain a long-term battleground". However it is
just NOT so if the community will change its stance to that which
society uses (successfully) in every other area of human interaction
beside the internet: make the perpetrator pay. A number of us have
given this a lot of thought to come up with a practical solution which
requires no new technology and no new legislation. It has been
proven to work within hours.
Those interested may view an interim document (comments welcome) at
<http://www.camblab.com/misc/univ_std.txt>
based on
<http://www.camblab.com/nugget/spam_03.pdf>
I grind my teeth every time I read a summary like yours because while
the lemmas are true, the conclusions are contrary to reality and
contrary to everything known about human behavior.
Jeffrey Race
On Tue, 2 Mar 2004 19:32:00 -0500, John Leslie wrote:
I'm planning to post a summary to the MARID-planning list mentioned
elsewhere in this thread -- hopefully before 5:00 pm Korea time.
I expect there will be a proto-WG mailing list declared by the close of
the MARID BoF at 11:30 Thursday (Korea time). I recommend the discussion
continue there.
The current draft of what I will post follows:
=============================== cut here ===============================
On the <ietf(_at_)ietf(_dot_)org> mailing list there has been discussion of
Principles of Spam Abatement. This is a brief summary of principles
which _may_ have consensus of that list. I accept full responsibility
for editing errors and misunderstandings.
- All communications must be by mutual consent.
- The spam problem starts with freely accepting mail from strangers.
- Spam is and will remain a long-term battleground and it needs serious
effort to counter.
- Every mail message carries a practically unforgeable token: the IP
address of the SMTP client.
- It is pointless to erect some expensive Maginot Line and pretend it
will solve the problem.
- There is not and can never be a hoop low enough to pass all human
strangers but exclude spammers' computers.
- If you want more of something, subsidize it; if you want less, tax it.
- Spammers need scale because they get a very low return. Therefore,
part of the solution should be to deny scalability to spammers.
- If we can communicate to the sender (without adverse side effects)
that a message is discarded, then occasional false positives aren't
as much of a problem.
- If you reject the message during the SMTP session you don't need to
generate a bounce message, the other side will do this.
- Errors returned after the close of the SMTP transaction are likely
to go to an innocent party; and should be deprecated for any email
identified as spam.
I also recommend perusing the summary of principles expressed on the
Next-Generation Mail <mail-ng(_at_)imc(_dot_)org> list at:
http://www.cs.utk.edu/~moore/opinions/user-visible-email-ng-goals.html
--
John Leslie <john(_at_)jlc(_dot_)net>